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Abstract 

Formalising mathematics in dependent type theory often requires to represent sets as setoids, 
i.e. types with an explicit equality relation. This paper surveys some possible definitions of 
setoids and assesses their suitability as a basis for developing mathematics. According to 
whether the equality relation is required to be reflexive or not we have total or partial setoid, 
respectively. There is only one definition of total setoid, but four different definitions of partial 
setoid, depending on four different notions of setoid function. We prove that one approach 
to partial setoids in unsuitable, and that the other approaches can be divided in two classes 
of equivalence. One class contains definitions of partial setoids that are equivalent to total 
setoids; the other class contains an inherently different definition, that has been useful in the 
modeling of type systems. We also provide some elements of discussion on the merits of each 
approach from the viewpoint of formalizing mathematics. In particular, we exhibit a difficulty 
with the common definition of subsetoids in the partial setoid approach. 


1 Introduction 

Proof-development systems such as Agda (Coquand & Coquand, 1999), Coq (2002) 
and Lego (Luo & Pollack, 1992) rely on powerful type systems and have been 
successfully used in the formalization of mathematics. Nevertheless, their underlying 
type theories - Martin-Lof’s Type Theory (Nordstrom et al, 1990) and the Calculus 
of Inductive Constructions (Werner, 1994) - fail to support extensional concepts 
such as quotients and subsets, which play a fundamental role in mathematics. While 
significant efforts have been devoted to embed subset and quotient types in type 
theory (Altenkirch, 1999; Barthe, 1995a; Courtieu, 2001; Hofmann, 1994; Hofmann, 
1995b; Hofmann, 1995a; Jacobs, 1999; Maietti, 1999; Salvesen & Smith, 1988), all 
proposals to date are unsatisfactory, mostly because they introduce non-canonical 
elements or lead to undecidable type-checking. Thus current versions of Agda, 
Coq and Lego do not implement subset or quotient types. Instead, mathematical 
formalizations usually rely on setoids, i.e. mathematical structures packaging a 
carrier: the “set”, its equality: the “book equality” and a proof component ensuring 
that the book equality is well-behaved. This notion was introduced in constructive 
mathematics by Bishop (1967). 
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While setoids have been extensively used in the formalization of mathematics, 
there does not seem to be any consensus on their precise definition. Instead, setoids 
come in several flavours: for example, they can be total (the book equality is an 
equivalence relation) or partial (the book equality is a partial equivalence relation); 
classical (apartness is defined as the logical negation of equality) or constructive 
(setoids come equipped with an apartness relation independent from the equality 
relation). Worse, literature about setoids fails to compare the respective merits of 
existing approaches, especially from the viewpoint of formalising mathematics. 

The purpose of this paper is four-fold: 

• in section 2, we review existing approaches to define (the category of) setoids. 
It turns out that there are several alternatives to define morphisms of partial 
setoids, leading to different definitions of the category of partial setoids; 

• in section 3, we show that there are, up to equivalence of categories, two 
approaches to setoids. Further, we show that one approach to partial setoids, 
that appears in the literature, uses a definition of function setoid that does not 
give a correct exponent object for a cartesian closed category; 

• in section 4, we assess the suitability of the different approaches by considering 
choice principles. We show that both partial and total setoids can be turned 
into a model of intuitionistic set theory by assuming the axiom of unique 
choice. However, the axiom of unique choice for partial setoids is too weak, 
in that it does not permit us to define some very natural functions on partial 
setoids; 

• in section 5, we introduce some basic constructions on setoids, such as subsets 
and quotients, and assess the relative advantages of existing approaches w.r.t. 
these constructions. 

Setting and notations To fix ideas, we shall be working with an extension of the 
Calculus of Constructions with dependent record types and universes. Dependent 
record types are used to formalize mathematical structures and universes are used to 
form the type of categories. Note that we do not need record subtyping and cumu- 
lativity between universes and that equality between records is neither extensional 
nor typed. However, our results are to a large extent independent from the choice 
of a type system. 

Following Luo (1994), we use Prop for the universe of propositions. Type, for the 
i-th universe of types. By abuse of notation, we write Type for Type 0 so we have 
Prop:Type and Type, : Type i+1 . Moreover, we use the notation (I : L, r : R) for a 
record type with two fields I of type L and r of type R and (I = a, r = b) for an 
inhabitant of that type. Finally, we let = denote Leibniz equality, defined as 

AA : Type.lx, y : A. TIP : A -► Prop. (P x) -► ( P y) 

Proof scripts Most of the results presented in the paper have been formalized in 
the proof assistant Coq Y7.3 and can be obtained from the following web page: 
http://www-sop.inria.fr/lemme/Venanzio.Capretta/setoids/index.html. 
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2 Setoids 

This section gathers some existing definitions of setoids. Here we focus on classical 
setoids, i.e. setoids that do not carry an apartness relation. Similarly, we ignore issues 
related to the decidability of equality and do not require equality to be decidable. In 
this setting, there is a single reasonable definition for total setoids and morphisms 
of total setoids. Also, there is a single reasonable definition for partial setoids, but 
there are at least four possible definitions for morphisms of partial setoids. 

Below we give these possible definitions of setoids. None of them is original. The 
first definition has been used, for example, in the formalization of basic algebra 
(Aczel, 1993; Barthe, 1995b) and of constructive category theory (Huet & Saibi, 
2000). The second definition has been used, for instance, in the formalization of 
polynomials (Bailey, 1993). The other definitions have been used by Hofmann (1994, 
1995a, 1995b) to interpret extensional concepts in intensional type theory. 


2.1 Total setoids 

A total setoid consists of a type T (the carrier), a binary relation R on T (the book 
equality), and a proof that R is an equivalence relation over T. 

Definition 1 

The type of total setoids is defined as the record type 

Set, = (eh : Type, eq r : el r —► el r —> Prop, er : Er el f eq r ) 

where 

Er = XA : Type.li? : A —► A —» Prop. 

( ref h : Vx : A. R x x, 

synrif : Vx,y : A. (R x y) —*■ (R y x), 
tranSf : Vx,y,z : A. (R x y) —»(R y z) —»(R x z)} 

By abuse of notation, we write el r A for A ■ el, and =a for A ■ eq f . 

Each type T induces a setoid $ T defined as 

(elf = T, eq T = Ax,y : T. x = y, er = ...) 

A map of total setoids is a map between the underlying carriers which preserves 
equality. So, if A and B are two total setoids, a map of total setoids from A to B 
consists of a function / : el r A —*■ el r B and a proof that / preserves equality. 

Definition 2 

Let A and B be two total setoids. 

• The type MAP r A B of morphisms of total setoids from A to B is defined as the 
record type 

MAPf A B = ( apf : el, A -*■ el, B, 

ext, : Vx,y : el, A. (x =a y) —►(ap, x =b ap, y)} 

By abuse of notation, we write ap, / a for / • ap, a. 




264 Gilles Barthe at al. 

• The function space setoid Map, A B of maps from A to B is defined as the 
record 

Map, A B = { elf = MAP f A B, 

eq, = Xf,g : map, A B. Vx : el r A. (ap, / x) =g (ap, g x), 
er = ...) 

We conclude this paragraph by observing that it would have been equivalent to 
define equality between morphisms from A to B as 

Xf,g : MAPf A B. Vx,y : el, A. (x = A y) -*• (ap, / x) = B (ap, g y) 

This alternative definition will be used later for partial setoids, but in that case the 
two definitions will not be equivalent. 


2.2 Partial setoids 

A partial setoid consists of a type T (the carrier), a binary relation R on T (the 
book equality) and a proof that R is a partial equivalence relation over T. 
Definition 3 

The type of partial setoids is defined as the record type 

Set p = (el p : Type, eq p : el p —> el p —> Prop, per : Per el p eq p ) 

where 


Per = aA : Type./.R : A —> A —> Prop. 

( sym p : Vx,y : A. (R x y) —> (R y x), 
trans p : Vx,y,z : A. (R x y) —> (R y z) —> (R x z )) 

By abuse of notation, we write el p A for A ■ el p and = A for A ■ eq p . 

In the framework of partial setoids, one distinguishes between defined and un¬ 
defined elements. The defined elements of a partial setoid A are those expressions 
x : el p A such that x = A x; they form the domain of the partial setoid. 

Definition 4 

• The domain of a partial setoid A is defined as the record type 

domain A = (cont : el p A,def : cont = A cont) 

• The domain setoid of a partial setoid A is defined as 

Domain A = ( el p = domain A, 

eq p = Xx,y : domain A. x ■ cont = A y ■ cont, 
per = ...) 

Note that the underlying equality of domain setoids is a total equivalence relation. 
In the next section, we will use domain setoids to relate partial setoids to total setoids. 

We now turn to the definition of morphism of partial setoids. It turns out that there 
are several possible alternatives for this notion; below we present four alternatives 
that appear in the literature. The alternatives are determined by the following two 
issues: 
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1. What is the status of extensionality? Following the definition of morphism 
of total setoids, a morphism of partial setoids from A to B can be defined 
as a pair (/,</»/) where / is a type-theoretical function mapping “elements” 
of A to “elements” of B and (j)f is a proof that / preserves equality; this 
definition is similar to the one for total setoids. However, one can also take 
advantage of the possibility to restrict the defined elements by using a partial 
equivalence relation and choose ( 1 ) to define morphisms of setoids as type- 
theoretical functions, ( 2 ) to embed extensionality in the definition of equality 
for morphisms of setoids - in such a way that a morphism is defined w.r.t. the 
equality of the setoid Map A B iff it preserves equality. 

2. What is the domain of the function? A morphism of partial setoids from A to 
B may either take as inputs elements of A, or elements of Domain A - in the 
latter case, one will require that the morphism is constant in the def field of 
the record. 

This leaves us with four alternatives, which are summarized and described below. 


Extensionality vs. inputs 

Elements of A 

Elements of Domain A 

In the definition of morphism 

Set p 

Set q 

In the definition of equality 

Set, 

Set s 


• The first alternative, which appears in Bailey (1993), is to adapt to partial setoids 
the definition of map of total setoids. Indeed, one can define a map of partial 
setoids as a map between the underlying carriers which preserves equality. 
Definition 5 

Let A and B be two partial setoids. 

• The type map p A B of P-morphisms of partial setoids from A to B is defined 
as the record type 

MAPp A B = ( app : el p A—> el p B, 

extp : Vx,y : el p A. (x =a y) —► (ap p x =b ap p y)} 

By abuse of notation, we write ap p / a for / • ap p a. 

• The P-function space setoid Map p A B of maps from A to B is defined as the 
record 

Map p A B = ( elp = MAPp A B, 

eq p = 2/,g : map p A B. Vx : el p A. 

(x x) -»(app / x) = B (app g x), 
per = ...) 

Note that / =m ap a b / f° r ever Y A, B '■ Set p and / : map p A B. 

• The second alternative requires that a function from A to B takes two arguments, 
namely an element a : el p A and a proof (j) : a = 4 a. The second argument is here 
to prevent some anomalies with empty sets (see section 3.2), but the result of the 
application of the function does not depend on it. 
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Definition 6 

Let A and B be two partial setoids. 

• The type map 9 A B of Q-morphisms of partial setoids from A to B is defined 
as the record type 

map 9 A B = ( ap q : Ha : el p A. (a =a a) -*■ el p B, 

ext q : \/x,y : el p AN(j> : x =a x.Vt p : y =a y. 

(x = A y) -»• (ap q x<t>= B ap q y ip)) 

• The Q-function space setoid Map 9 A B of maps from A to B is defined as the 
record 

Map 9 A B = ( elp = map 9 A B , 

eq p — 2/, g : map ? A B. Vx : el p A. V(f> : (x =a x). 

(ap q f x 0) = B (ap q g x ^), 
per = ...} 

This approach makes function application awkward; perhaps for this reason it 
has never been used in practice. Note that / =m ap A B f for every A, B : Set p 
and / : map 9 A B. 

• The third alternative, which appears in Hofmann (1995b) and has been used 
extensively in Cubric et al. (1998) and Qiao (2000), does not require inhabitants 
of the carrier type of the function setoid to preserve equality: instead, the function 
space between A and B is defined as a partial setoid with carrier el p A —*■ el p B. 
Equality is defined in the obvious way; as a consequence, the defined elements of 
this partial setoids are those type-theoretical functions preserving equality. 
Definition 7 

Let A and B be two partial setoids. 

• The type map,. A B of R-morphisms of partial setoids from A to B is defined 
as the type 

MAP r A B = elp A -*■ elp B 

• The R-function space setoid Map,. A B of maps from A to B is defined as the 
record 

Map,. A B = ( elp = map,. A B, 

eq p = A/,g : map,. A B. Vx,y : el p A. 

(x = A y) * / x = B g y, 

per = ...) 

Note that we need not have / =m ap a b f f° r -T B : Set p and / : map,. A B: 
in other words, Map,. A B may be a partial setoid. Also, note that transitivity of 
equality for Map,. A B uses that 

Vx, x' : elp A. (x = A x') —» x = A x 
which is provable from the symmetry and transitivity of = A . 

• The fourth alternative, which appears in Hofmann (1994), takes as inputs defined 
elements of A and does not require inhabitants of the carrier type of the function 
setoid to preserve equality. 
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Definition 8 

Let A and B be two partial setoids. 

• The type map s A B of S-morphisms of partial setoids from A to B is defined 
as the type 

map s A B = ITa : el p A. x = A x -*• el p B 

• The S-function space setoid Map s A B of maps from A to B is defined as the 
record 


Map s A B = 


elp 

eq p 


per 


map s A B, 

A/,g : map s A B. Vx,y : el p 
(x = A y) -> f x 4> = B g y V 


2.3 Total functional relations as morphisms? 

All previous definitions introduce morphisms of setoids as (structures with under¬ 
lying) type-theoretical functions. In contrast, set theory views morphisms of sets as 
graphs. One may therefore wonder about this departure from mainstream math¬ 
ematics. Two points need to be emphasized: 

• first, our type theory is expressive enough to formalize the notion of total 
functional relation and thus one needs not depart, at least in principle, from 
mainstream mathematics; 

• secondly, our type theory does make a difference between the two approaches: 
every function has an associated total functional relation but the converse 
needs not be true. 

In section 4 we provide some choice axioms under which the two approaches coincide, 
and briefly discuss the validity of our results/claims in other type-theoretical settings, 
but for the time being, let us focus on the relative benefits of the two approaches: 

• Using type-theoretical functions as the underlying concept for morphisms of 
setoids is very much in line with the philosophy of type theory because it 
provides a computational meaning to functions. In effect, most formalizations 
of mathematics in type theory follow the first approach. 

• Using total functional relations as the underlying concept for morphisms of 
setoids avoids some of the difficulties with choice principles, see Section 4. 
On the other hand, total functional relations do not have a computational 
meaning, which is a weakness from a type-theoretical perspective, and their use 
complicates the presentation of formal proofs, because it becomes impossible 
to write / a for the result of applying the function / to a. 

While we are strongly in favour of using type-theoretical functions as the the 
underlying concept for morphisms of setoids, we would like to conclude this section 
by observing that it is possible to use a monadic style to manipulate total functional 
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relations. Concretely, our suggestion is to use the i-monad 1 , which assigns to every 
setoid A : Set, the setoid i A defined as the predicates over A that are satisfied by 
exactly one element. Formally, we need to introduce the setoid Q of propositions, 
defined as 

(el, = Prop, eq, = IP, Q : Prop. P Q, er = ...} 
the quantifier 3\ x £ A. P x, where A is a total setoid, defined as 
3x : el, A. (P x) A (Vy : el, A. P y —> x =a y) 
the type of predicates over A that are satisfied by exactly one element 
i A = (up : map, d fi, pp : 31 x £ A. ap r up x) 
and finally the setoid i A itself 

(el, = i A, eq, = IP, Q : i A. P ■ up =m A p, a q Q ' U P, er = ■ • •) 

It is easy to turn i into a monad. For example, the unit //, of the monad is defined 
as 

AA : Set,. ( ap, = Ax : el, A. ( up = (ap, = Ay : el, A. x =a y, ext, = ...}, 

PP = •••), 

ext, = ...} 

To our knowledge, this approach has not been pursued before, and we have no 
practical experience with it; yet we feel that it is likely to be less cumbersome than 
manipulating total functional relations directly. 

We conclude this section by observing that it is possible to treat total relations 
likewise, i.e. by defining an e-monad which maps every setoid A to the setoid e A of 
non-empty predicates over A. Concretely he type of non-empty predicates over A is 
defined as 

e A = (np : map, A Q, ne : 3x : el, A. ap, np x) 
and the setoid e A is defined as 

(el, = e A, eq, = AP,Q :e A.P ■ np =map, a q Q ' n P’ er = • • •) 

Again, it is a simple matter to turn e into a monad. 

3 Categories of setoids 

The purpose of this section is to associate to every notion of setoid its corresponding 
category, and show that all categories defined in the previous section form a model 
of the simply typed 2-calculus. However, it turns out that the function space setoid 
for PSet does not correspond to the exponent that turns PSet into a cartesian closed 
category. Further, we compare the five categories of setoids; it turns out that there 
are essentially two categories of setoids: TSet, which is equivalent to QSet and SSet, 
and RSet, which is equivalent to PSet. 

1 A monad in a category C is a triple { M,ri,fi) where M:C -» C is a functor, ry. idc -» M and 
are natural transformations such that n o fiM = pi o My and y o rjM = y o My = idjv,- 
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3.1 The category of total setoids 

In this subsection, we define the category of total setoids and show that it forms a 
cartesian closed category. Following previous work on the formalization of category 
theory in type theory (Aczel, 1993; Huet & Safin, 2000; Safin, 1998), a T-category 
(or simply a category) consists of 

• a type obj of objects (in Type, ); 

• a polymorphic setoid of morphisms horn : obj —> obj —> Set, ; 

• a polymorphic composition operator 

• : IL4, B,C : obj. bmap, (horn A B ) (horn B C) (hom A C), 

where bmap, X Y Z is defined as map, X (Map, Y Z); 

• a polymorphic identity id : HA : obj. el t (hom A A)-, 

• a proof that composition is associative and identity acts as a unit. 

Note that objects of a category are required to form a type, but the morphisms 
between two objects are required to form a setoid because we need to identify equal 
morphisms: Leibniz equality, which is the default equality relation in type theory, is 
too rigid for this purpose. 

Definition 9 

The type Cat, of T-categories is defined as the record type 

(obj : Type!, 

hom : obj —> obj -*• Set,, 

• : IL4,B, C : obj. BMAP r (hom A B) (hom B C) (hom A C), 

id : IL4 : obj. hom A A, 

catlaw : </> cat ) 

where $ cat is 

(VA,B,C,D : obj. V/ : hom A B. Vg : iiom B C.Vh : hom C D. 

f • (g • h) =(hom A D) (f • S) • h) 

A ifiA,B : obj. V/ : hom A B. 

(id A) • f = (hom A B) f A / • (id B) =(hom A B) f) 

using hom Y Z as a shorthand for el r (hom Y Z) and x • v as a shorthand for 
ap, (• x) v. In the sequel, we use obj c , home and home as shorthand for C • obj, 
C • hom and el t (home Y Z) respectively. 

Total setoids can be made into a category that plays in Cat, the role that Set 
plays in standard category theory. 

Definition 10 

The category TSet of total setoids takes as objects elements of Set, and as homset 
between A and B the setoid Map, A B. 
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Functors are defined in a similar way; informally, a functor from C : Cat, to 
C' : Cat, consists of 

• a function fobj : obj c —* obj c , ; 

• a polymorphic map of setoids 

fmor : IIo,o' : obj c . map, (home o o') (home' (fobj o) (fobj o')); 

• a proof that fobj preserves identities and composition. 

Definition 11 

The parametric type Func, of T-functors is defined as 

XC, C' : Cat,. ( fobj : obj c —> obj C ', 

fmor : Flo, o' : obj c . map, (home o o') (hom C ' (fobj o) (fobj o')), 
flaw ...) 

The parametric type BFunc, of T-bifunctors is defined as 

XC, C', C" : Cat,. ( bfobj : obj c -*• obj C ' **► obj c „, 

bfmor : ITo,o' : obj c . TIu,u' : obj c ,. 

bmap, (hom c o o') (home' u «') 

(hom C " (bfobj o u) (bfobj o' u')), 

bflaw : ...) 

We now proceed towards the definition of cartesian closedness and define the 
notions of terminal object, products and exponents. Recall that o is a terminal 
object if for every object o' there exists a unique morphism from o' to o. 

Definition 12 

The parametric type TObj, of terminal objects is defined as: 

XC : Cat,. ( tobj : obj c , 

tarr : Flo : obj c . hqm c o tobj, 

tlaw : Vo : obj c . V/ : hpm c o tobj. / = (homc 0 tobj) tarr o) 

As appears from the above definition, terminal objects are understood constructively. 
This constructive reading of categorical notions is in line, for example, with Huet & 
Saibi (2000) and Saibi (1998), and is more appropriate for the issues tackled here. 
Definition 13 

The parametric (record) type Prod, is defined as 


XC : Cat,. ( prodo 

obj c —> obj c —> obj c , 

proda 

ITo, o',o" : obj c . bmap, (hom c 0 o') (hom c 0 0") 
(hom c 0 (prodo o' 0")), 

prodl 

IIo,o' : obj c . home (prodo 0 o') 0, 

prodr 

Flo, 0' : obj c . hom c (prodo 0 o') o', 

prodlaw 

...} 

Given a category with 

a product structure prod : Prod, 7?, we use the notation 


o x o' for prod • prodo o o'. We also use the notation / x /' : hony oi x oj 02 x o' 2 
to denote the product morphism of / : hony 01 02 and /' : hony oj oj. 
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We can now define a Cartesian Closed Category (CCC) as a structure consisting 
of: 

• a category ; 

• a terminal object •; 

• a bifunctor for products x : # x -» ( €\ 

• a bifunctor for exponents =>: f €° v x —> *5?; 

• an evaluation map eval,,.,/ : hom ((o => o') x o) o' for every pair of objects o 
and o'; 

• an abstraction map abst 0j( / i0 » : map, (hom (o x o') o") (hom o (o' => o")) for 
every three objects o, o', and o"; 

• a proof that for every / : hom (o x o') o", ap f abst„„- i0 » / is the unique 
morphism that gives back / when composed with eval„'. 0 ». 

Definition 14 

The type of cartesian closed categories CCC, is the record type 

(cccat : Cat,, 
terminal TObj, cccat, 

ccprod Prod, cccat, 

ccexp cccat • obj —> cccat • obj —> cccat • obj, 

cceval : ITo,o' : cccat • obj. cccat • hom ((o => o') x o) o', 

ccabst ITo,o', o" : cccat • obj. 

map, (cccat • hom (o x o') o") (ccat • hom o (o' => o")), 
cceq : Vo, o', o" : cccat • obj.V/ : cccat • hom (o x o') o". 

((ap, ccabst 00 < 0 » /) x (cccat • id o')) • cceval</ j() » 

ccunique : Vo,o',o" : cccat • obj. 

V/ : cccat • hom (o x o') o".Vg : cccat • hom o (o' => o"). 

(g X (CCCat • id o')) • CCeval 0 ' j0 » =( C ccathom (oxo') o") / 

-*• g =(cccathom o (o'^o")) ap, CCabSt 0/ y j0 - /) 

where we use the notations oxo' for (cccprod • prodo o o') and o => o' for (ccexp o o') 
and we write the object parameters as indexes, for example we write cceval, for 
(cceval o' o"). 

Note that this is a constructive definition of cartesian closed category: a cartesian 
closed category is a category with extra structure. So what does it mean for a category 
of setoids to be a cartesian closed category? The following definition provides two 
possible answers to the question. 

Definition 15 

• A category C : Cat, is a cartesian closed category if there is a ^ : CCC, such 
that *5? • cccat = C. 

• A pair (C, E) with C : Cat,, E : C ■ obj —*• C • obj —» C ■ obj is a canonical 
cartesian closed category if there is a # : CCC, such that ?? • cccat = C and 
# • ccexp = E. 
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We use the terminology “ canonical cartesian closed category” to specify that 
exponents are given canonically by an exponent function, and not just required to 
exist. Clearly C is a cartesian closed category iff (C, E) is a canonical cartesian closed 
category for some exponent function E. 

Lemma 16 

(TSet, AA,B : Set,. Map, A B) is a canonical cartesian closed category. 

3.2 The categories of partial setoids 

We now turn to categories of partial setoids. Their definition is similar to that 
of TSet, but rely on a different formalism. Indeed, we have seen in the previous 
subsection that setoids and morphisms of setoids must come before and be the 
base of category theory. Consequently, we will have different notions of category 
according to the notion of setoid and setoid morphism we assume. More precisely, 
we will have four versions of category theory that we call P-category theory, Q- 
category theory, R-category theory and S-category theory; and inside each of these 
settings we can define the categories PSet, QSet, RSet and SSet, respectively. These 
categories will play a similar role as the one played by the category Set in standard 
category theory. 

Definition 17 

Let X range over P, Q, R and S. The type Cat* of X-categories is defined as the 
record type 

(obj : Type,, 

hom : obj —► obj —> Set*, 

• : IL4, B, C : obj. bmap x (hom A B) (hom B C) (hom A C), 

id : IL4 : obj. el x (hom A A), 
catlaw : ^ cat ) 

where </j cat is suitably defined. 

Other notions, and in particular the notion of cartesian closed category can be 
adapted likewise. 

Definition 18 

• The P-category PSet takes as objects elements of Set p and as homset between 
A and B the setoid Map p A B. 

• The Q-category Qset takes as objects elements of Set p and as homset between 
A and B the setoid Map ? A B. 

• The R-category RSet takes as objects elements of Set p and as homset between 
A and B the setoid Map, A B. 

• The S-category SSet takes as objects elements of Set p and as homset between 
A and B the setoid Map s A B. 

In the following lemma, we are interested in determining whether the categories 
PSet, QSet, RSet and SSet with their associated function space setoid, as defined in 
the previous section, form canonical cartesian closed categories. 
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Lemma 19 

The following pairs are canonical cartesian closed categories: 

• (PSet, XA, B : Set p . Map, A B) 

• (QSet./M, B : Set p . Map 9 A B) 

• (RSet, XA, B : Set p . Map, A B) 

• (SSet, XA, B : Set p . Map s A B) 

It is interesting to note that (PSet, 2/1, B : Set p . Map p A B) is not a canonical 
cartesian closed category. This can be established by exploiting anomalies related to 
“empty” partial setoids. 

Definition 20 

For any type T, the empty partial setoid 0 T over T is defined by 

0 T = ( el p = T, 

eq p = Xx,y : T. _L, 

per = ( sym p = Xx,y : T. X p :_L p, 

trans p = Xx,y : T. X p,q : _L. p)) 

Now let ^4 = 0 Unit and let l p = (el p = Unit,eq p = Xx,y : Unit. T, per = • ••}. 
The type map p A (Map p l p A) is empty: indeed, let / : map p A (Map p l p A). Then 
((/ • ap p *) ■ ext p * * !) : _L, where * is the only inhabitant of Unit and ! is the only 
proof of T; this is impossible by consistency of the system. On the other hand, if 
there was a cartesian closed category of the form 

(cccat = PSet, ccexp = XA,B : Set p . Map p A B, ...} 

then the type map p A (Map p 1 p A) would be inhabited, a contradiction. On the basis 
of this observation, it does not seem adequate to formalize mathematics in type 
theory using partial setoids and the function space setoid Map p . 


3.3 Equivalence between categories 

The purpose of this paragraph is to establish whether the categories defined in the 
previous section are equivalent 2 . The basic conclusion, summarized in Table 1, is 
that there are, up to equivalences, two cartesian closed categories of setoids: TSet, 
equivalent to QSet and SSet, and RSet, equivalent to PSet. The * in the comparison 
of RSet and PSet means that the isomorphism does not preserve function setoids. 

Before proceeding any further, we would like to clarify what we mean by comparing 
categories. Formally, the standard notion of equivalence can only be used to compare 
categories that live in the same formalism. In particular, a standard definition of 
equivalence would not be appropriate to compare categories that do not belong 

2 An equivalence between two categories <£ and 3 is a tuple {F, G, t\, e) where 

• F is a functor from % to 3; 

• G is a functor from 3 to ^; 

• v\ is a natural isomorphism from id*- to G o F; 

• e is a natural isomorphism from F o G to id-,. 
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Table 1. Comparisons between categories (EQ = equivalence; NOEQ = not 
equivalence; ISO = isomorphism) 



TSet 

PSet 

QSet 

RSet 

SSet 

TSet 


NOEQ 

EQ 

NOEQ 

EQ 

PSet 

NOEQ 


NOEQ 

ISO* 

NOEQ 

QSet 

EQ 

NOEQ 


NOEQ 

ISO 

RSet 

NOEQ 

ISO* 

NOEQ 


NOEQ 

SSet 

EQ 

NOEQ 

ISO 

NOEQ 



to the same framework, e.g. TSet which is a T-category and RSet which is an 
R-category. One remedy to this problem is to define transformations that map 
categories in one formalism to categories in another formalism. Going back to 
TSet and RSet, one can for example transform TSet into an ^-category TSet, and 
compare it to RSet. Here we prefer to remain at an informal level of discussion, 
since our main purpose is to stress that not all existing alternatives are equivalent. 

3.3.1 Comparing TSet and RSet 
We begin by showing that TSet and RSet are not equivalent. 

Theorem 21 

The categories TSet and RSet are not equivalent. 

Proof 

Call an object o a weak initial (respectively, initial) object if for every object o' 
there is at most one (respectively, exactly one) morphism from o to o’. Equivalence 
of categories preserves weak initial and initial objects, hence the following two 
observations are sufficient to conclude that TSet and RSet are not equivalent: 

• In RSet, there is a weak initial object that is not initial. 

• In TSet, every weak initial object is initial. 

For the first observation, take 0 Unit. Since this partial setoid does not have any 
defined element, all functions from it to any other setoid are equal, so it is an weak 
initial object. On the other hand, there is no morphism from 0 Unit to 0 Empty, 
because the underlying type function should have type Unit —» Empty and there is 
no such function. 

For the second observation, let o be a weakly initial object in TSet. We prove that 
its carrier type must be the empty type. It is immediate to prove that if the carrier 
type of a total setoid is empty then the setoid is initial. From the fact that o is weakly 
initial it follows that the two constant functions c true ,Cfaise : map, o (:|: Bool), where 
Bool is the type with two elements true and false, must be equal. It immediately 
follows that the carrier of o is empty. □ 
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Nevertheless, there are two obvious functors ST 0t : TSet —► RSet and 2ft 2T : 
RSet —► TSet. The functor 2T 2ft is defined in the obvious way: its object part 
forgets the reflexivity of equality, and its arrow part forgets the extensionality of the 
morphism. As for 2ft2T, it is defined below. 


Definition 22 

The functor 2#2T : RSet —► TSet is defined as follows: 


• Object part: if A is a partial setoid, then Total A is its corresponding total 
setoid: 

Total A = ( el, = domain (Partial A) 

= (cont : el, A, def : cont = A cont), 
eq, = ••• 

er = •••) 

• Arrow part: if g is a defined morphism of partial setoids from A to B, i.e. 
g : map, A B and 4> '■ g =Map a b S then '2ft2T g is defined as the record 

0 t 9 ~ g = ( ap f jfc lx : domain A. ( cont — g x • cont, 

def =. (j) x ■ cont x • cont x ■ def) 
ext, = lx, y : domain A.(f> x • cont y ■ cont) 

One can show that the obvious functors between TSet and RSet cannot give an 
equivalence, e.g. we can prove that 2ft2T is not full as in Lemma 31. 


3.3.2 Comparing TSet and QSet 

There are two obvious functors 21 : TSet — > QSet and :2>2T : QSet — > TSet. They 
form an equivalence pair. 

Definition 23 

The functor 2T2L : TSet — ► QSet is defined as follows: 

• Object part: if A is a total setoid, then 21 A = Partial A is its corresponding 
partial setoid (just forget the proof of reflexivity): 

Partial A = ( el p = el, (Total A) = domain B, 
eq p = 


per 
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• Arrow part: let A and B be total setoids and / : MAP r A B. Then S A f : 
map q (S'A A) (S'A B) is defined by the components 

(S'A /) • ap q : Yla : el p (S'A A), a = ( ^j A) a -> el p (S'A B) 

: ITfl : el r A.a = A a — ► el, B 
(S'A f) ■ ap q = Xci : el, A. X cj> : a = A a. ap, / a 

(S'A f ) • ext 9 : Vx, y : el p (S'A A). 

V0 : x ==(« a) xMip '■ y =(^j a) y- X ={$-$ A ) y 
-»• (ap ? (S'A f)x <j>) =(^ B) (ap 9 (S'Af)y ip) 

: Vx,y : el t A.V0 : x = A x.Vip : y = A y x = A y 
— (ap t / a) = b (ap f / y) 

/) • ext 9 = 2 x,y : el p (S'A A). X<j) \ x = A x. kxp \y = A y. 
f ■ ext, x y 

The functor AS' : QSet —> TSet is defined as follows: 

• Object part: if A is a partial setoid, then A S' A = Total A is its corresponding 
total setoid. 

• Arrow part: let A and B be partial setoids and / : map 9 A B. Then AS' f : 
map, (AS~ A) (AS~ B) is defined by the components 

(AS' f) ■ ap, : el, (AS- A) -► el, (AS' B) 

: DOMAIN A —> DOMAIN B 

(AS~ f) • ap t = Xx : domain A.( cont = ap 9 / x • cont x • def, 
def = / • ext 9 x • cont x • cont 

x • def x • def x • def) 

(AS' f) • ext, : Vx, y : el, (AS~ A).(x = (ssr A ) y) 

-*• ap, (S'A f) x = (irj b) ap, (S' A /) y 
: Vx, y : domain A.x • cont = A y ■ cont —» 

(ap q f x ■ cont x • def) = B (ap q f y ■ cont y ■ def) 
(AS~ f) • ext, = Xx,y : domain A.f ■ ext 9 x • cont y ■ cont x • def y • def 

To show, that these functors form an equivalence we look at their two compositions 
and show that they are naturally isomorphic to the identity functor in the respective 
categories. 

Theorem 24 

The categories TSet and QSet are equivalent. 

Proof 

We shall define (S'A,AS~,r\,e) is an equivalence between the categories. 

Let A : TSet, then we have 

AS- (S’A A) : TSet 

= Total (Partial A) 
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Let B : QSet, then we have 

22 {22 B) : QSet 

= Partial (Total B) 

The unit of the equivalence is then defined, for every A : TSet as the morphism 
r\ A : MAPf A (22 {22 A)) 
rj A = { ap f : e\ t A -> ef {22 {22 A)) 

: el f A —> (cont : el r A, def : cont =a cont) 

= Ax : eh A(cont = x, def : A ■ er • refl r x), 
exf t = • • •} 

t] is a natural isomorphism between the identity functor 2js e t and the functor 

22 o 22. 

The counit of the equivalence is defined, for every B : QSet as the morphism 
e B : map, {ST2 {22 B)) B 

e B = ( ap ? : ITx : el p {22 {22 B)).x =(sra. ur b)) x ~^ p el p B 
: fix : domain B.x =^s B p x —» p el p B 
= Ax : domain B.A(j) : x =(srsi (a.g- b)) x.x • cont, 
ext 9 = • • •) 

e is a natural isomorphism between the functor ST2 o 22T and the identity functor 

2* QSet- □ 


3.3.3 Comparing TSet and SSet 

The categories TSet and SSet are equivalent. The shortest way to show this fact 
is to prove that SSet is equivalent to QSet, and then we obtain the equivalence 
to TSet by Theorem 24. There are two obvious functors 22 : QSet — ► SSet and 
22 : SSet -* QSet. They are simply the identity on objects. On morphisms, 22 just 
forgets the proof component ext 9 , while 22 on the defined elements of Map s A B, 
that is the functions / : map s A B for which there is a proof c : / =]VT A p a b f- ' s 

22f { = (ap 4 =/,ext, =■{} 

22 and 22 are inverse of each other, so 
Theorem 25 

The categories SSet and QSet are isomorphic. The categories SSet and TSet are 
equivalent. 


3.3.4 Comparing PSet and RSet 

We proved in Lemma 19 that PSet cannot be completed to a cartesian closed 
category having Map p A B as exponent object. Therefore there are no equivalences 
between PSet and any of the other four categories that preserves the setoid of 
functions. However, there is an equivalence between PSet and RSet that does not 
preserve the setoid of functions. 
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Definition 26 

The functor 0*01 : PSet —> RSet is defined as follows: 

• Object part: the identity. 

• Arrow part: if / is a morphism of partial setoids from A to B in PSet, i.e. 
/ : MAPp A B, then 0*0t f is simply / • ap p . 

The functor 0t0* : RSet —> PSet is defined as follows: 

• Object part: the identity. 

• Arrow part: if / is a morphism of partial setoids from A to B in PSet, i.e. 
/ : MAP r A B such that / =Map a b f’ t ^ ien /' s the record 

010* f = (ap p = /, extp = fi) 

where £ is a proof that / is a defined element of Map,. A B, i.e. c : 
(/ =Map, ii/) = v V : el p A - ( x =A y) (ap p / x) = B (app / y). 

It is trivial to verify that 3PM and MSP with the identity natural transformations 
form an equivalence, actually even an isomorphism, between PSet and RSet. 

Theorem 21 

The categories PSet and RSet are isomorphic. 


3.3.5 Comparing TSet and PSet 

That TSet and PSet are not equivalent follows from the equivalence of PSet to RSet, 
Theorem 27, and the fact that TSet is not equivalent to RSet, Theorem 21. There 
are, however, two obvious functors 3T3P : TSet —> PSet and 3P3T : PSet —► TSet. As 
expected, neither 3T3P nor 3P3T yields an equivalence of categories. 

The functor 2T3P : TSet — > PSet is defined in the obvious way: its object part 
turns a total setoid into a partial setoid simply by forgetting about the reflexivity of 
equality, whereas its arrow part is the “identity”. 

Definition 28 

The functor ST3P : TSet —> PSet is defined as follows: 

• Object part: if A is a total setoid, then 

2T0* A = Partial A = ( el p = A • el f , 
eq p = A • eq„ 
per = ...} 

is its corresponding partial setoid. 

• Arrow part: the arrow part of 0~3P is the “identity”. 

0~3P cannot induce any equivalence between TSet and PSet, as shown by the 
following lemma. 

Lemma 29 

There exists a partial setoid A : Set p that is not isomorphic to the image of any 
total setoid under 2T3P. 
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Proof 

We exhibit a partial setoid A : Set p such that for every B : Set,, it must be that 
either Map p A (2T3P B) or Map p (JT& B) A is empty. Indeed, assume h t : T and 
let ^4 = 0 T. Now assume B : Set,. We claim that in the empty context: 

• Map p gP B) A is not empty iff B is empty. Indeed, if b : el, B and 
/ : map p gP B) A then / • ext p b b (B ■ er • refl r b ) : _L, which is impossible 
by consistency of the system. 

• Map p A {gT gP B) is not empty iff B is not empty. 

The result follows. □ 

The functor gP&~ mapping partial setoids to total setoids takes as object part the 
function mapping a partial setoid to its domain setoid, and as function part the 
corresponding transformation described below. 

Definition 30 

The functor 'gPgT : PSet —► TSet is defined as follows: 

• Object part: if A is a partial setoid, then 

gPgT A = Total A = 

( el f = domain A, 

eq f = 3.x, y : domain A. x • cont = A y ■ cont, 
er = ( reflj = lx : domain A. x ■ def, 

synrif = lx, y : domain A. A ■ per • sym p x • cont y- cont, 
tranSf = lx, y, z : domain A. 

A ■ per • trans p x • cont y ■ cont z • cont)) 
is its corresponding total setoid— Domain A differs from Total A by the name 
of its fields. 

• Arrow part: if g is a morphism of partial setoids from A to B, i.e. g : map p A B 
then gPtr g is defined as the record 

2P2T g = ( ap r = lx : domain A. 

( cont = ap p g x • cont, 

def = g • ext p x • cont x • cont x • def), 
ext r = lx,y : domain A. g • ext p x • cont y • cont) 

2P2T cannot induce any equivalence between TSet and PSet, as shown by the 
following lemma. 

Lemma 31 

The functor 3P2T is not full, i.e. there exist two partial setoids A and B such that 
MAPp A B is empty but map, (gPgT A) (3PST B) is not. 

Proof 

Assume h t : T and let A = 0 T and B = 0 (domain A). We claim that in the empty 
context: 

• there is no g : map p A B. If there were such a g, then (ap p g t) ■ def : _L. This 
is impossible by consistency of the system; 
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• there is a g : map, (Total A) (Total B). Indeed, consider 


g = ( ap t = lx : domain A. (cont = x, def = x ■ def), 
ext t = lx,y : domain A. Ip : _L. p) 

The expression g is indeed of type map, (Total A ) (Total B) since we have 


□ 


el, (Total A) 
eh (Total B) 
( x = (Total a) I 7 ) 
(a P f x = (Total B) ap t y) 


DOMAIN A 
DOMAIN (DOMAIN A) 


3.4 Discussion 

We have seen that there are up to equivalence two possible choices for a category of 
setoids, namely TSet and RSet. In the coming sections, we compare these approaches 
from the point of view of formalizing mathematics. 

One could also compare these categories from other perspectives, e.g. one could 
check which of the categories TSet and RSet do form a model of dependent type 
theory. This issue has been investigated in depth by Hofmann (Hofmann, 1995b). 
It turns out that the category RSet does form a model of dependent type theory, 
whereas there are some difficulties with TSet. In particular, it is problematic to 
define a family of setoids depending on a setoid. One could also check which of 
the categories TSet and RSet do form a model of intuitionistic set theory, i.e. a 
topos (Lambek & Scott, 1986). It turns out that none of the categories forms a 
topos because of the distinction between total functional relations and functions. In 
Section 4, we study choice principles which turn these categories into toposes. 


4 Choice principles 

To pursue the analysis of setoids as a type-theoretic formalization of the notion 
of set, we study their behaviour in relation to two choice principles: the axiom of 
choice and the axiom of description, also called axiom of unique choice. 

Before proceeding any further, we dispose of a possible criticism regarding the 
relevance of this enquiry: one may argue that the use of axioms, and in particular 
choice axioms, inside the theory of setoids is methodologically unjustified. In fact, 
setoids where devised to develop mathematics in type theory without external 
assumptions; if we are to assume axioms, we may as well assume all the axioms of 
set theory and dispense with setoids. While we agree that one should try to develop 
mathematics using only the constructions available in type theory, we still defend the 
importance of knowing the relation of the notion of setoid with choice principles, 
because this relation tells us much about the nature of setoids. Besides, as we will 
show, some seemingly natural choice principles are inconsistent in RSet. While one 
may not be interested in adding choice axioms, the fact that some choice principles 
are provably false is undesirable. 
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We consider the full axiom of choice and the axiom of descriptions, or unique 
choice - the former leads to classical logic, whereas the second is constructively 
valid. The axiom of descriptions is consistent in TSet, while in RSet there are two 
versions of it, the stronger one is inconsistent and the weaker one is too weak in 
that some very natural functions cannot be defined in it. Our conclusion is that TSet 
behaves better than RSet with respect to choice principles. 


4.1 The axiom of choice for types 

The axiom of choice for types expresses that every total relation from U to V yields 
a type-theoretic function of type U —* V. 

Definition 32 

Let U and V be two types. The type tr U V of total relations from U to V is 
defined as the record type 

tr U V = ( re I : U -> V — Prop, 

total : Vx : U3y : V. rel x y) 

The axiom of choice for types is given by the context r ACT 
ACTmake : UU, V : Type, (tr U V) —* U —> V, 

ACT check : VI/, V : Type. VR : tr U V. Vx : U. R ■ rel x (ACT make U V R x) 
The following result is well-known (Coquand, 1990; Werner, 1997). 

Proposition 33 

Tact' s consistent, but not inhabited in the Calculus of Inductive Constructions. 


4.2 The axiom of choice for total setoids 

The axiom of choice for total setoids states that every total relation between total 
setoids induces a map of total setoids. A relation from A to B, where A and B are 
total setoids, consists of a type-theoretical relation R : (el r A) —> (el, B) —* Prop and 
a proof that R is compatible. 

Definition 34 

Let A and B be two total setoids. The type Rel, A B of relations from A to B is 
defined as the record type 

rel, A B = { rel, : el, A —► el, B —> Prop, 

compat, : Vx,x' : el, A. Vy,y' : el, B. 

x =a x' —* y = B y' —> rel t x y -»■ ref x' y') 

An alternative definition of binary relations can be given as setoid functions with 
result in Q, with £1 defined as in section 2.3. A total relation from A to B is a relation 
R such that for every a : el. A, there exists h : e\ t B satisfying R ■ rel, a b. 
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Definition 35 

Let A and B be two total setoids. The type TREL r A B of total relations from A to 
B is defined as the record type 

TREL r A B = ( trelf : REL t A B, 

totaL : Vx : el t A. 3 y : el r B. trel t • rel, x y) 

The axiom of choice for total setoids is given by the context T^c 

AC make '■ TIA,B I SET,. (TREL t A B) —> (MAP t A B), 

ACcheck ■ VA,£ : SETr. VR : TRELr A B. Vx : el r A. 

R ■ trel, • refi x (ap f (AC mate A B R) x) 

The following result is well-known. 

Lemma 36 
The context T^^: 

1. is consistent; 

2. is not instantiable in the context T^^j; 

3. entails that TSet is a topos 3 with Q as subobject classifier; 

4. entails excluded middle, i.e. Vd : Prop. A V ->A ; 

5. entails proof-irrelevance, i.e. Vd : Prop.Vx, y : A. x = y. 

Proof sketch 

The first statement is derivable from the fact that the axiom of choice for setoids 
holds in the proof-irrelevance model - see also Hofmann (1995b); the second 
statement is derivable from the fourth and the non-provability of classical logic in 
the context r^cx- The third item states that TSet is a topos with Q as subobject 
classifier and is proved by a simple calculation. The fourth item states the provability 
of classical logic from the axiom of choice for setoids and follows from Diaconescu’s 
construction, e.g. see Lacas & Werner (1999) and Lambek & Scott (1986). The 
last item establishes that proof-irrelevance, i.e. the property that all proofs of 
a proposition are equal (the property was first considered by de Bruijn in the 
Automath project (Nederpelt et al, 1994)), is derivable from the axiom of choice for 
setoids and can be established from Barbanera & Berardi (1996). □ 

We conclude this section by mentioning principles that are equivalent to the 
axiom of choice for setoids. It is well-known that the axiom of choice is equivalent 
to stating that every surjective function has a right-inverse. It is routine to define a 
context equivalent to T^c that constructs for every surjective function / from A to 
B a function g from B to A and a proof that g is right-inverse to A. One can also 
give a formulation of the axiom of choice that makes use of the e-monad defined 
in subsection 2.3; in this form the axiom states that we can exhibit an element of 
every non-empty predicate. The interested reader is referred to Capretta (2002). 


3 Informally, a topos S' is a cartesian closed category with a subobject classifier, i.e. with an object that 
acts as a set of truth values, e.g. see Lambek & Scott (1986) for a precise definition. 
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4.3 The axiom of descriptions for total setoids 

As seen above, the axiom of choice for setoids is extremely powerful. A weaker form 
of choice principle, acceptable intuitionistically, is the axiom of descriptions, a.k.a. 
the axiom of unique choice, which states that every total functional relation induces 
a map. 


4.3.1 The axiom and its consistency 

A total functional relation from A to B, where A and B are total setoids, consists of 
a relation R on A and B and proofs that R is total and functional. 

Definition 37 

Let A and B be two total setoids. The type tfrel, A B of total functional relations 
from A to B is defined as the record type 

tfrel, A B = ( tfreL : Rel, A B, 

ttotal, : Vx : el, A. 3y : el f B. tfrel, • ref x y, 
fun, : Vx : el, A. 'iy,y' : el, B. 

(tfreL • rel, xy)-» (tfrel f • ref x y') —*• y =b y') 

The axiom of descriptions for total setoids is given by the context T 

AD ma ; <t , : IL4, B : Set,. (tfrel, A B) —> (map, A B), 

AD check : Vd, B : Set,. VR : tfrel, A B.'ix : el, A. 

R ■ tfrel, • ref x (ap, (AD, nate A B R) x) 

The following result is well known. 

Lemma 38 

The context T^d: 

1. is instantiate in the context Tact ; 

2. is consistent; 

3. entails that TSet is a topos; 

4. does not entail classical logic nor proof-irrelevance. 

Proof sketch 

The first item is proved by easy logical manipulations. The second item follows 
immediately from the consistency of The third item is proved by simple 

calculations. The last item follows from the fact that classical logic and proof- 
irrelevance are not derivable from f^cp. □ 

As with the axiom of choice, we can express the axiom of descriptions by stating 
that every bijection (i.e. injective and surjective function) has an inverse, but also in 
terms of the i-monad. Again, the interested reader is referred to Capretta (2002). 

4.4 Choice principles for partial setoids 

In this section, we focus on the axiom of descriptions for partial setoids. In fact, 
there are two possible formulations of the axiom, depending on the notion of total 
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relation one adopts. It turns out that one formulation is inconsistent, and that the 
other is too weak. More precisely, we show that some very natural functions that 
can be defined on a total setoid with the axiom of descriptions cannot be defined in 
the corresponding partial setoid, even in presence of (the second formulation of) the 
axiom of descriptions. This observation leads us to the position that total setoids 
are better suited for the development of mathematics in type theory than partial 
setoids. Notice that in the following we will not use exponents for partial setoids, so 
our results hold both for PSet and RSet. 

As suggested above, we first need to decide about the notion of total relation. A 
total relation from a partial setoid A to a partial setoid B can be defined in two 
different ways: 

• (definedness-irrelevant) as a relation R such that for every a : e\ p A there exists 
b : el p B such that R a b; 

• (definedness-relevant) as a relation R such that for every a : el p A such that a 
is defined, i.e. a =a a, there exists b : e\ p B such that R a b and b = B b. 

Each definition yields its variant of the axiom of descriptions. 


4.4.1 Axiom of descriptions, definedness-relevant version 

In this section, we define the definedness-relevant version of the axiom of descriptions 
and show it is inconsistent. 

Definition 39 

Let A and B be two partial setoids. 

1. The type Rel p A B of relations from A to B is defined as the record type 

RELp A B = ( relp : el p A —> e\ p B —> Prop, 

Compaq : Vx,x' : el p A. Vy, y' : el p B. 

x =a x r —► y =b y r — * relp x y —* rel p x' y') 

2. The type TFRELp A B of total functional relations from A to B is defined as 
the record type 

TFRELp A B = ( tfrelp : Rel p A B, 

ttotalp : Vx : el p A. (x =a x) 

-» 3y : elp B. (tfrelp • rel p x y A y = B y), 
fun p : Vx : el p A. Vy,y' : el p B. 

(tfrelp • relp x y) —> (tfrelp • rel p x y') 

-*■ x = A x -► y = B y'} 

The axiom of descriptions for partial setoids is given by the context T^j) 

AD m * : IL4, B : Set p . (tfrel p A B) —> (map p A B), 

AD*,* : Vd, B : Set p . VR : tfrel p A B. Vx : elp A. 

R ■ tfrelp • relp x (ap p (AD mafce A B R) x) 
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Lemma 40 

The context F^p> is inconsistent. 

Proof 

For every type A and partial setoid B, one can prove that the empty relation 
r : RELp (0 A) B yields a total functional relation r' : tfrel p (0 A) B and by the 
axiom of descriptions, a map / : map p (0 A) B. Now take A to be inhabited. It 
follows that every el p B is inhabited, so every type B is inhabited. □ 


4.4.2 Axiom of descriptions, definedness-irrelevant version 

In this section, we adopt the definedness-irrelevant definition of total functional 
relations. 

Definition 41 

Let A and B be two partial setoids. The type tfrel p A B of total functional relations 
from A to B is defined as the record type 

tfrel p A B = { tfrel p : Rel p A B, 

ttotal p : Vx : el p A. 3 y : el p B. tfrel p • rel p x y, 
fun p : Vx : el p A. Vy,y' : el p B. 

(tfrel p • relp x y) —> (tfrel p • rel p x /) 
-»x=^x-»y= B /) 

Then the context T^p> is defined exactly as in the previous paragraph. 

Lemma 42 

The context T^pj is instantiate in the context r^cx, and hence consistent. Further, 
in context T^p), RSet does form a topos. 

However, we show that some very natural functions that can be defined on a 
total setoid with the axiom of descriptions cannot be defined in the corresponding 
partial setoid with the axiom of descriptions. We will construct a counterexample, 
i.e. a function that is definable on a total setoid but not on the corresponding partial 
setoid. 

The counterexample is given by a length function that computes the length of 
eventually null sequences of natural numbers (we use N to denote the type of natural 
numbers). We use the extensional equality on sequences: If eri,cr 2 : N —► N, then 
(di = e xi ff 2 ) = (Vi : N.(T| i = (72 i). The total version of the setoid is 

ZSeq, = ( el r = (seq : N —» N, evz : 3m : N.Vi : N. i > m —*■ seq i = 0), 
eq, = 2(7 i,( 72 : elf.cr • seq = ex , 02 • seq, 

In the context T^p) we can define a function length, : map, ZSkq, N, that gives 
the length of the part of a sequence that is nonzero (we use N r to denote $ N, i.e. 
the setoid derived from N by taking Leibniz equality as book equality). 

In contrast, we claim that there cannot be a version of this function if we use 
partial setoids. First, we let N p = (el p = N, eq p = 2.x, y : N. x = y, per = ...) be the 
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partial setoid of natural numbers and we define the partial counterpart of ZSEQ t as 

ZSeq p = ( el p = N —► N, 

eq p = A<7i,< 72 : N —>• N.3wt : N.Vi : N. 

(i^m-> (<j\ i) = (<72 0 ) A (i > m -> (ui i) = 0 A (<r 2 i) = 0), 
per = •••} 

Of course we could define ZSeq p from ZSkq, by simply forgetting the proof of 
reflexivity, but what we want to stress here is that the idea of using the book 
equality to restrict the domain, which is the main advantage of partial setoids, does 
not always work as desired. 

Now we claim that there cannot be a version of the length function for ZSeq p in 
context r^p). 

Proposition 43 

The existence of the function length p : (map p ZSeq p N p ) is not derivable in 
context T ad . 

The remaining of the paragraph is devoted to a proof of the proposition. We 
proceed by defining a context T^p such that TaD’^CP is consistent and in which 
one can prove the length function does not exist. The context T^p, which captures 
the continuity principle 4 , is defined as 

CP make : ((N -» N) -» N) -» (N -» N) -» N 

CP check : VF : (N —>• N) —>• N. Va,/? : N —>• N. 

(Vi : N. (i ^ CP make Foi)^l3i = ai)^Fp = Foi 

Lemma 44 

The context PaD’FcP' s consistent. 

Proof 

The context is valid in the realizability model. □ 

Further, we show that in the context T^p it is contradictory to assume the 
existence of the length function. 

Proposition 45 

Tcp F -i3length p : (map p ZSeq p N p ). Vu : (ZSeq p • el p ).cr =zseq a * 
a (LENGTHp • apPp (j)^OA 
Vi : N.i > (LENGTHp • apPp a) -*■ a i = 0 


4 The continuity principle is a well-known principle in intuitionistic mathematics. In constructive re¬ 
cursion theory, it follows from the Kreisel-Lacombe-Shoenfield theorem (see Troelstra & van Dalen 
(1988) and Chapter 16 of Beeson (1985)). In type theory, the continuity principle is stated as follows: 
For every operator F : (N —> N) —> N and for every sequence a : N —» N, there exists a natural number 
m such that, for every other sequence P : N -» N that is equal to a for indexes up to m, that is, 
(p i) = (a i) for i ^ m, we have that F(p) = F(a). Notice that the Continuity Principle is not provable 
in type theory, but it is a meta-result that holds for the operators definable in type theory. For our 
purpose, however, it is sufficient to know that the continuity principle is valid in the realizability model, 
in which the axiom of descriptions is also valid. 
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Proof 

If there were a function length p : map ; , ZSeq p N p , then length p • ap p : (N —> N) —> N 
would be an extension of length to all sequences. We can apply the Continuity 
Principle to the operator length p • ap p and the constantly zero sequence 0. Hence, 
there must exist a natural number m such that, for all ft : N —» N satisfying 
(Vi : N. (i ^ m) —►/?/ = 0 / = 0), we have (ap p length p ft = ap p length p 0 = 0). 
Now consider the sequence y defined by 

f 0 if i^m 
y i=) l if I = m + 1 
[ 0 if i > m + 1. 

The sequence y coincides with 0 on the first m elements, and thus, for the consequence 
of the continuity principle ap p length p y = 0. On the other hand, y becomes 
eventually zero only after the element m+ 1, so we should have ap p length p y = m+1. 
We reached a contradiction, so our assumption that length p could be constructed 
is confuted. 0 

Notice that the crux of the counterexample is that, in the total setoid ZSeq ( , the 
carrier type already contains information on when the sequence becomes eventually 
zero. We can use this information to define length^. This information is not present 
in the domain of the partial setoid ZSeq p , making it impossible to define the function 

LENGTHp. 


5 Mathematical constructions with setoids 

In this section, we study the type-theoretical analogous of two basic set-theoretical 
constructions, namely subsets and quotients, using setoids as an implementation 
of the intuitive idea of sets. In particular, we will show that the partial setoid 
methodology runs into practical difficulties when dealing with subsetoids. More 
specifically, we will see that the canonical definition of subsetoid in RSet is too 
weak, in the sense that if we use this definition, some natural functions on subsetoids 
cannot be defined, while they are definable in the corresponding total subsetoid. 


5.1 Subsetoids 

Total setoids, as embodied by TSet, and partial setoids, as embodied in RSet, 
are based on two distinct ways of restricting the domain of a structure, that is, 
of defining subsetoids. In the first case, restriction is achieved by modifying the 
underlying carrier of the setoid, while in the second case, restriction is achieved by 
modifying the setoid’s underlying equality relation. However, we will show that total 
setoids are unavoidable, in the sense that, even if we use partial setoids, we will be 
forced to restrict the carrier type of a setoid to obtain certain subsetoids. 

We begin by reviewing the definition of subsetoids in the context of total setoids. 
Intuitively a subsetoid is that part of a setoid whose elements satisfy a predicate. 
Predicates on setoids are defined as type-theoretic predicates on the carrier sets that 
are invariant for the setoid equality. 
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Definition 46 

Let A be a total setoid. Setoid predicates over A are the elements of the record type 

pred, A = ( pf r : e\, A^> Prop, 

inv, : Vx,y : el, A. (x = A y) —► (pf, x —> pf, y)} 

Note that an equivalent definition would be pred, A = map, A Q. In TSet the 
subsetoid of a setoid A defined by a predicate P : pred, A is obtained by first 
restricting the carrier type, and then constructing the setoid over this carrier by 
projecting the equality of A on the first component. 

Definition 47 

Let A : Set, and P : pred, A. The carrier of the subsetoid selected by P from A is 
subCarrier A P = (subel : el. A, insub : P ■ pf, subel) 
and the subsetoid is 

subSetoid, A P = ( el, = subCarrier A P, 

eq, = 2.x, y : el,.(subel x) = A (subel y), 
er = • • •) 

Sometimes (if the axiom of descriptions is not supposed to be true) it is necessary 
to use a constructively stronger notion of predicate and subsetoid: the carrier of 
the predicate has type el, A —> Type so that its proofs can be used to construct 
elements of types. The rest of the definition is in this case the same, except for the 
substitution of Type for Prop. For the examples given below we assume either that 
this constructive definition is used or that the axiom of description (equivalently, 
the axiom of choice for types) is assumed. 

On the other hand, when using partial setoids, we do not change the underlying 
type, but we modify the equality. Predicates over partial setoids are defined in the 
same way as predicates over total setoids. 

Definition 48 

Let A be a partial setoid. Setoid predicates over A are the elements of the record 
type 

PREDp A = ( pfp : el p A —> Prop, 

invp : Vx,y : el p A. (x = A y) —> (pf p x -*• pf p y)} 

The propositional function pf p must be defined on the whole carrier type el p A, 
even on elements x for which x = A x is not true. 

Definition 49 

If A is a partial setoid and P : pred p A, then we define the subsetoid of A selected 
by P as 

subSetoiDp A P = (elp = el p A, eq p = 2.x, y : el p A.(P ■ pf p x) A x = A y, per = • • •} 

In the definition of eq p we do not require (P ■ pf p y) because it is derivable from 
(P • pfp x), x = A y, and P • inv p . 
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This definition has the nice property that an element of the carrier of the subsetoid 
is automatically an element of the carrier of the setoid. However, a serious drawback 
of this approach consists in the fact that a function defined on a subsetoid of A 
must be a type-theoretic function defined on the entire carrier type of A. In some 
cases, this cannot be done and the use of suBSETOiD r A P is unavoidable. A first 
example of the above is given by the length function in the example of eventually 
null sequences that we developed in Subsection 4.4. Indeed, one can define the setoid 
of sequences as Map, N p N p , define the predicate of being eventually zero and then 
form the subsetoid of eventually zero sequences. Using the results of the previous 
section, this gives us a first example of a function that cannot be defined using 
subsetoids a la partial setoid. 

Below we develop a second example based on the real numbers. Here the idea is 
to define a setoid of real numbers and then restrict the setoid to smaller systems, 
say, the rationals or the natural numbers, for example. Of course, one would hope 
that the number systems defined in this fashion enjoy the same properties and have 
the same definable functions as their more standard counterparts. It turns out that 
this is not possible in the framework of partial setoids. 

It is well known that in a constructive setting there are several possible im¬ 
plementations of real numbers (e.g. see Chirimar & Howe (1992), Ciaffaglione & 
Gianantonio (2000), Geuvers et al. (2001), Harrison (1998) and Jones (1993) for 
some works on the formalization of reals in type theory). Here we choose to define 
the setoid of real numbers 1R using Cauchy sequences. The total setoid is defined as 

]R f = ( el f = (seq : N —> Q, con : Cauchy seq), 
eq t = Xri,r 2 : el,, ri • seq = CO nv r 2 ■ seq, 
er = •••) 

where Q is the type of rational numbers, Cauchy is the the property of being a 
Cauchy sequence of rationals: 

Cauchy s = Vi : N. 3k : N. V/j,y 2 : N. yj > k -> j 2 > k -*■ |(s yj) — (s j%)\ < 1/i 

and = CO nv is the equality on sequences of rational numbers that holds whenever two 
sequences are co-convergent: 

(si =conv S 2 ) = Vi : N. 3k : N. Mj : N . j > k |(«i j) - (s 2 j)\ < 1/i 
The corresponding partial setoid is 
]R p = ( el p = N -» Q, 

eq^ = Xr\, r 2 : el r . (Cauchy fq) A (Cauchy r 2 ) A (jq • seq = conv r 2 • seq), 
er — • • •) 

As emphasized above, it is convenient to consider smaller number systems, like the 
natural or rational numbers, as subsetoids of the real numbers—an alternative would 
be to consider implicit coercions, see e.g. (Sa'ibi, 1997) but this falls beyond the scope 
of this paper. We have a type Q of rational numbers, that is not a subsetoid of 1R. 
We are going to define the subset of real numbers corresponding to the rationals. 
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To this end we use the relation between N —► Q and Q, such that s q holds if 
s converges to q: 

s q = Vi : N. 3k : N. V/ : N. i > k —*■ |(s j) — q\ < 1/i 

We define the predicate isRational, : pred, ]R t by (isRational, • pf r r) = 3q : 
Q. s • seq q. The predicate isRational p : pred,, IR ( , is defined correspondingly. 
Now we want to define the subsetoid of the reals whose elements are the real 
numbers that satisfy ^Rational,. This is Q t = (subSetoid, ]R t isRational,) in TSet 
and Q p = (subSetoid p 1R p isRational p ) in RSet. The problem now arises if we want 
to define a function on these subsetoids that depends strongly upon the satisfaction 
of the condition. For example, consider the function Num that gives the numerator 
of the reduced fraction representing a rational number. 

In the framework of partial setoids, defining Num on Q p requires that we define 
it on the whole type N —> Q, without any information on convergence. This is 
impossible because we cannot constructively compute whether a sequence converges 
to a rational value and, in such case, to which one. Further, it is also impossible to 
define Num with the axiom of descriptions. On the other hand, if we work in the 
framework of total setoids and use the axiom of descriptions for total setoids, we 
can easily define such a function for Q, since we can extract from one of its elements 
r the proof insub r containing the rational value of r. 


5.2 Quotients 

Both when working with total and partial setoids, quotients can be realized by just 
substituting the setoid equality with a stronger equivalence relation—below we refer 
to the latter as the quotienting relation. In either case the quotienting relation must 
preserve the setoid equality: if two elements are equal according to the book equality, 
they must be equivalent w.r.t. the quotienting relation. However, when working with 
partial setoids, a problem arises: the quotienting relation may hold for elements 
that are not equal to themselves according to the setoid equality, i.e. that are not in 
the domain of the setoid. In this case, taking the equivalence relation as the book 
equality of the quotient would add elements to the domain, which is incorrect. A 
solution, proposed by Hofmann (1995a), is to take as book equality in the quotient 
setoid the restriction of the equivalence relation on the original setoid to the domain 
of the setoid. We briefly develop this point below. 

Recall that an equivalence relation R over a setoid A is an element of rel, A A 
that satisfies reflexivity, symmetry, and transitivity. Now assume that A is a total 
setoid and that R is such an equivalence relation with (j)R to witness that R is indeed 
an equivalence relation. For the sake of readability, we write x = R y as a shorthand 
for R • ref x y. In TSet the quotient setoid A/R is defined as 

(el f = el t A, eq r = 2.x,y : el, A. x = R y, er = <j) R ) 

But in the same situation in RSet, i.e. with A is a partial setoid, R a partial equivalence 
relation with (j> R to witness that R is indeed an partial equivalence relation - and 
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using x =r y as a shorthand for R ■ rel p x y it would be wrong to define (A /R) as 
(el p = el p A, eq p = lx, y : el p A. x = R y, per = <j> R ) 

because it may happen that x =r x holds when x = A x does not hold, so we are 
introducing new elements in the setoid. Instead, we must define first R' : rel p A A as 

(relp = Ax,y : el p Ax = A x A y = A y A x = R y, compat p = • • •} 
and then define (A/R) as 

(elp = elp A, eq p = Ax, y : el p A. x =r' y, per = .. .} 


6 Conclusion 

Type-theoretical frameworks are used as a foundation for mathematics in several 
ongoing efforts to develop large libraries of formalized mathematics with proof- 
assistants such as Agda, Coq and Lego. It is therefore natural to study the relation¬ 
ship between type theory and the standard foundational framework for mathematics, 
i.e. set theory. Recently, several authors (Aczel, 1999; Werner, 1997) have undertaken 
a systematic comparison between set theory and intensional type theory (see also 
Aczel (1978, 1982, 1986) for earlier work). 

This paper studies a related issue, namely the use of set-theoretic notions in type 
theory. More precisely, we focused on the use of setoids in the formalization of 
mathematics. We analyzed the different approaches to setoids that can be found in 
the literature, compared them, and drew some conclusions in regard to their appro¬ 
priateness. Specifically, we showed that existing approaches can be classified into 
two equivalence classes: the first equivalence class contains total setoids, TSet, and 
some equivalent versions of partial setoids, QSet and SSet. The second equivalence 
class contains an essentially different way of using partial setoids, RSet, and PSet; 
for the latter, we have shown that a previously used approach to function space is 
inadequate and needs to be redefined as in RSet. 

In addition, we compared the two classes under the aspect of suitability for 
the formalization of mathematics. In particular, we showed that the partial setoid 
methodology runs into practical difficulties when dealing with subsetoids. 
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